Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE05544D0E11F185F7ADF1CE1D38B0.roa
File: 27FE05544D0E11F185F7ADF1CE1D38B0.roa (raw, json)
Hash identifier: mfVRzADQuSP9TivhIReajNhC5eGKylH1aRCYyHcKH8g=
Subject key identifier: ED:58:41:F1:E2:68:96:E2:2F:81:5C:DA:B3:47:20:5A:F5:2B:BD:64
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3B9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE05544D0E11F185F7ADF1CE1D38B0.roa
Signing time: Mon 11 May 2026 07:51:02 +0000
ROA not before: Mon 11 May 2026 07:50:58 +0000
ROA not after: Thu 21 May 2026 07:50:58 +0000
asID: 28419
IP address blocks: 156.233.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111545 (0x1b3b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 07:50:58 2026 GMT
Not After : May 21 07:50:58 2026 GMT
Subject: CN=6a018a66-fd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:5d:ca:fd:72:42:d0:2b:3a:86:ce:2f:8f:
7d:fc:a2:04:32:14:06:c6:7d:7e:82:43:9a:05:28:
28:93:fa:fb:28:0e:57:c8:ab:e8:8b:f5:a2:20:10:
b3:1d:3f:b4:6c:af:51:3d:cb:b2:59:3d:c3:16:31:
14:2e:1f:aa:d2:ec:0e:45:ac:73:3c:7a:90:39:da:
cd:b5:f3:5c:15:58:8f:41:4c:db:19:97:12:c9:da:
dd:da:ad:6f:8d:f7:ff:bc:64:19:f0:99:3f:98:13:
f8:c1:b0:22:37:98:c3:4a:46:c0:1b:51:7f:51:fb:
2d:a3:32:52:ec:f2:91:0f:0e:9f:a9:60:b9:a4:4e:
ea:13:fb:42:7c:af:8b:3d:59:17:52:cc:5d:b0:61:
f4:eb:eb:b1:73:10:24:54:2c:70:f2:3c:d7:bf:0d:
56:25:2b:9d:fc:92:23:fd:de:d8:de:2f:af:2e:58:
d2:e3:3a:8a:14:a8:87:92:4e:f6:72:ea:c4:a2:62:
64:1c:65:30:21:bd:60:ff:67:38:bc:83:72:10:46:
10:87:a3:1a:c7:f5:d5:39:2c:00:a7:9c:76:ba:7f:
f4:3c:46:39:0d:dd:0c:43:17:5b:cb:f9:d1:0e:14:
f5:8c:48:ad:6d:b8:23:20:d1:da:b2:bb:00:47:a5:
70:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:58:41:F1:E2:68:96:E2:2F:81:5C:DA:B3:47:20:5A:F5:2B:BD:64
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE05544D0E11F185F7ADF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.28.0/22
Signature Algorithm: sha256WithRSAEncryption
26:d6:fc:7f:2d:c3:ff:79:a9:66:bb:46:72:bb:9f:da:47:6c:
e7:9c:18:d7:7b:f5:b1:0f:d2:22:29:ac:88:8c:1d:f2:ee:31:
19:70:63:9a:53:90:f1:1e:cc:7c:75:88:e9:1f:2e:76:d3:f1:
d7:ec:73:9e:b6:1b:4f:8f:44:74:40:e0:f4:33:15:41:80:a4:
e6:01:b6:02:85:22:2b:f3:c8:03:7c:99:aa:33:10:f3:a1:fb:
e9:cf:3c:08:32:f1:04:de:9a:da:87:21:c7:ea:cf:c2:e2:9e:
8d:ee:02:d3:e8:92:fd:df:ba:df:03:99:42:06:0f:50:3b:32:
16:64:31:bc:70:0b:4d:67:80:ca:f8:06:38:de:d2:67:6e:b5:
bf:d1:4b:da:f9:14:5d:03:19:be:40:ea:d1:b7:f2:8b:00:b4:
4c:e1:3b:aa:86:ab:d1:b3:e0:16:ab:cc:90:09:08:2d:1e:c6:
c6:31:02:bf:8e:49:7d:e1:90:28:da:2e:7e:a1:33:b0:59:33:
05:2f:f5:1c:58:bb:87:0a:9a:3f:8c:3c:e0:f6:b7:12:5d:b0:
21:fa:aa:6a:06:1d:84:49:3a:16:4f:91:30:77:0d:6a:f5:17:
7d:66:37:a4:54:46:14:ce:5a:6d:09:2f:a5:67:ab:6c:34:5a:
9e:0e:ea:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:37:49 2026 by rpki-client